TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!

TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!
TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!
2019-04-15 07:49:07 - last edited 2019-04-15 15:58:07
Model: TL-ER6120
Hardware Version: V3
Firmware Version: 3.0.1 Build 20180724 Rel.80086

Hi All!

TL-ER6120 v3 - 3.0.1 Build 20180724 Rel.80086

 

 

Situation 1:

 

ID Name Source Destination Policy Service Type Interface Effective Time Operation
1 RDP_IN RDP_Clients TS Allow RDP WAN1 Any
2 RDP_Block IPGROUP_ANY TS Block RDP WAN1 Any

 

Rule 2 not work! ANY Host has acces to TS via RDP protocol.

 

Situation 2:

 

ID Name Source Destination Policy Service Type Interface Effective Time Operation
1 RDP_IN RDP_Clients TS Allow RDP WAN1 Any
2 RDP_Block IPGROUP_ANY TS Block ALL WAN1 Any

 

Rule 1 not work! All Host in RDP_Clients group has no acces to TS via RDP protocol.

 

RDP_Clients - friendly hosts w WAN ip

TS - wan1 ip (NAT + Virtual Server is ON)

 

What is Wrong in V3/V2? In V1 all works correct! WTF?

 

What is Me and !Me in Destenation group and what is the difference between them?

 

0
0
#1
Options
3 Replies
Re:TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!
2019-04-15 08:34:00

VamaX wrote

Hi All!

TL-ER6120 v3 - 3.0.1 Build 20180724 Rel.80086

 

 

Situation 1:

 

ID Name Source Destination Policy Service Type Interface Effective Time Operation
1 RDP_IN RDP_Clients TS Allow RDP WAN1 Any
2 RDP_Block IPGROUP_ANY TS Block RDP WAN1 Any

 

Rule 2 not work! ANY Host has acces to TS via RDP protocol.

 

Situation 2:

 

ID Name Source Destination Policy Service Type Interface Effective Time Operation
1 RDP_IN RDP_Clients TS Allow RDP WAN1 Any
2 RDP_Block IPGROUP_ANY TS Block ALL WAN1 Any

 

Rule 1 not work! All Host in RDP_Clients group has no acces to TS via RDP protocol.

 

RDP_Clients - friendly hosts w WAN ip

TS - terminal server in LAN (NAT + Virtual Server is ON)

 

What is Wrong in V3/V2? In V1 all works correct! WTF?

 

What is Me and !Me in Destenation group and what is the difference between them?

 

Hi VamaX

 

It's confused about what your rules mean. Maybe you can put on the screenshots.

I saw that there is a FAQ which similar to your requirements. Maybe you can have a look. https://www.tp-link.com/en/support/faq/2026/

0
0
#2
Options
Re:Re:TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!
2019-04-15 14:16:09 - last edited 2019-04-15 15:57:47

I read whis -> https://www.tp-link.com/en/support/faq/2026/

 

1. My rule:

 

Situation 1:

Rule 2 not work! ANY Host has acces to TS via RDP protocol.

 

Situation 2:

Rule 1 not work! All Host in RDP_Clients group has no acces to TS via RDP protocol.

 

RDP_Clients - friendly hosts WAN ip

TS - wan1 ip (NAT + Virtual Server is work correct)

 

 

2. What is Me and !Me in Destenation group and what is the difference between them?

 

 

0
0
#3
Options
Re:TL-ER6120 v3 - Acces Control IPGROUP_ANY Block Protocol Rule not work!
2019-04-18 07:11:42 - last edited 2019-04-18 15:20:25

All work now correct if in Destination - choise !ME

1
1
#4
Options